A memory corruption flaw exists in ImageMagick. The ResolutionUnit tag in EXIF IFD0 fails to sanitize user-supplied input when parsing offset and count values resulting in memory corruption. With a specially crafted image, a context-dependent attacker can cause a denial of service or potentially execute arbitrary code.

Upgrade to version 6.7.5-8 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• Security Tracker: 1027032
• CVE ID: 2012-0247 (see also: NVD)
• Secunia Advisory ID: 47926 48247 48259 49043 49063 49068 49317 49478
• Bugtraq ID: 51957
• Related OSVDB ID: 79004
• Vendor Specific News/Changelog Entry: http://article.gmane.org/gmane.linux.gentoo.announce/1945
  http://lists.opensuse.org/opensuse-updates/2012-06/msg00001.html
  http://support.f5.com/kb/en-us/products/big-ip_ltm/releasenotes/product/relnote-ltm-11-2-0.html
  http://support.f5.com/kb/en-us/solutions/public/13000/300/sol13343.html
  http://www.debian.org/security/2012/dsa-2427
  http://www.ubuntu.com/usn/usn-1435-1/
  https://bugs.launchpad.net/calibre/+bug/999496
• Other Advisory URL: http://www.cert.fi/en/reports/2012_15/vulnerability595210.html
• Vendor Specific Solution URL: http://www.gentoo.org/security/en/glsa/glsa-201203-09.xml
• Vendor URL: http://www.imagemagick.org/
• Vendor Specific Advisory URL: http://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=20286
• RedHat RHSA: RHSA-2012:0544 RHSA-2012:0545

• Joonas Kuorilehto - Codenomicon CROSS Project
• Aleksis Kauppinen - Codenomicon CROSS Project